Every CVE whose affected-product data names Microsoft Confcom, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (1)
CVE-2026-21522 — CVSS 6.7 (medium): Improper neutralization of special elements used in a command ('command injection') in Azure Compute Gallery allows an authorized attacker…